EP3217276B1 - Information processing system, job processing method, data storage apparatus, information device, and carrier means - Google Patents
Information processing system, job processing method, data storage apparatus, information device, and carrier means Download PDFInfo
- Publication number
- EP3217276B1 EP3217276B1 EP17159388.2A EP17159388A EP3217276B1 EP 3217276 B1 EP3217276 B1 EP 3217276B1 EP 17159388 A EP17159388 A EP 17159388A EP 3217276 B1 EP3217276 B1 EP 3217276B1
- Authority
- EP
- European Patent Office
- Prior art keywords
- information
- data
- setting
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000013500 data storage Methods 0.000 title claims description 42
- 230000010365 information processing Effects 0.000 title claims description 14
- 238000003672 processing method Methods 0.000 title claims description 4
- 238000012545 processing Methods 0.000 claims description 91
- 230000008859 change Effects 0.000 claims description 73
- 230000004044 response Effects 0.000 claims description 24
- 238000000034 method Methods 0.000 claims description 7
- 238000004891 communication Methods 0.000 description 14
- 238000007726 management method Methods 0.000 description 11
- 238000010586 diagram Methods 0.000 description 8
- 230000006870 function Effects 0.000 description 8
- 230000015572 biosynthetic process Effects 0.000 description 3
- 238000005401 electroluminescence Methods 0.000 description 3
- 230000010354 integration Effects 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 2
- 230000001052 transient effect Effects 0.000 description 2
- 239000012050 conventional carrier Substances 0.000 description 1
- 238000012217 deletion Methods 0.000 description 1
- 230000037430 deletion Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 239000000284 extract Substances 0.000 description 1
- 239000004973 liquid crystal related substance Substances 0.000 description 1
- 239000000203 mixture Substances 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 238000000926 separation method Methods 0.000 description 1
- 239000007787 solid Substances 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/12—Digital output to print unit, e.g. line printer, chain printer
- G06F3/1201—Dedicated interfaces to print systems
- G06F3/1202—Dedicated interfaces to print systems specifically adapted to achieve a particular effect
- G06F3/1222—Increasing security of the print job
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/606—Protecting data by securing the transmission between two devices or processes
- G06F21/608—Secure printing
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/12—Digital output to print unit, e.g. line printer, chain printer
- G06F3/1201—Dedicated interfaces to print systems
- G06F3/1223—Dedicated interfaces to print systems specifically adapted to use a particular technique
- G06F3/1237—Print job management
- G06F3/1238—Secure printing, e.g. user identification, user rights for device usage, unallowed content, blanking portions or fields of a page, releasing held jobs
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/12—Digital output to print unit, e.g. line printer, chain printer
- G06F3/1201—Dedicated interfaces to print systems
- G06F3/1278—Dedicated interfaces to print systems specifically adapted to adopt a particular infrastructure
- G06F3/1285—Remote printer device, e.g. being remote from client or server
- G06F3/1288—Remote printer device, e.g. being remote from client or server in client-server-printer device configuration
Definitions
- the present invention relates to an information processing system, a job processing method, and carrier means.
- a printing system includes a terminal, a print server, and one or more image forming apparatuses.
- the terminal encrypts print data using key information that a user possesses, and the encrypted print data is temporarily stored in the print server.
- the print data stored in the print server is printed from a desired image forming apparatus from among the one or more image forming apparatuses.
- the encrypted print data is decrypted with authentication information of the user when the print data is printed. Because the print data is encrypted using the key information that the user possesses, information contained in the print data is kept confidential on the print server.
- the print data cannot be decrypted on the print server. For this reason, when the image forming apparatus acquires the print data from the print server, it is difficult to change print setting information contained in the print data at the print server. In other words, it is difficult to satisfy two demands at a time, one being a demand for securing the confidentiality of printed matter and the other being a demand for changing a print setting at a time of printing.
- JP-4018645-B2 ( JP-2005-216029-A ) relates to an encryption of print data.
- JP-4018645-B2 discloses separating a print job generated by a driver into a page description language (PDL) data part containing confidential information and an attribute part containing additional information and encrypting the separated PDL data part using received user public key information to generate a secure job.
- PDL page description language
- US 2007/002351 A1 discloses a job ticket issuing device including a document encryption processing unit for encrypting document data with a document data encryption key; and a job ticket encryption processing unit for encrypting a job ticket, including information about a content of job processing with respect to the document data, with a job ticket encryption key which is different from the document data encryption key.
- an information processing system (100) includes a terminal apparatus (110), a data storage apparatus (140), and an information device (170) according to claim 1.
- the confidentiality of job data is secured while the setting of the job data can be changed.
- an image forming system 100 a print server 140, and an image forming apparatus 170 are, respectively, examples of an information processing system, a data storage apparatus, and an information device.
- FIG. 1 is a schematic diagram illustrating a configuration of the image forming system 100 according to the present embodiment.
- the image forming system 100 includes one or more terminals 110, the print server 140, one or more image forming apparatuses 170, and an authentication server 190.
- the one or more terminal 110, the print server 140, the one or more image forming apparatuses 170, and the authentication server 190 are connected to one another via a network 120 such as a local area network (LAN). Accordingly, they can exchange data with one another.
- LAN local area network
- the image forming system 100 includes one terminal 110 as an example of a terminal apparatus and two image forming apparatuses 170a and 170b, each being an example of an information device, there may be any suitable number of terminal devices and information devices.
- Examples of the terminal 110 include a general-purpose computer such as a desktop computer, a laptop computer, and a tablet computer, and a mobile terminal such as a smartphone.
- the terminal 110 is installed with an application for creating text documents and a printer driver for generating print data, for example.
- the terminal 110 issues a print job in accordance with a user instruction, and thereby the user can obtain printed matter.
- the print server 140 is implemented by a general-purpose computer such as a personal computer, a workstation, and a server computer.
- the print server 140 provides a server function that stores print data received from the terminal 110 and transmits print data in response to a request from the image forming apparatus 170.
- the image forming apparatus 170 performs print processing based on print data. Examples of image forming apparatus 170 include a multifunction peripheral and a printer.
- the image forming apparatus 170 receives, from the print server 140, the print data that is transmitted from the terminal 110 and stored in the print server 140, and performs image formation based on the received print data.
- the print data constitutes job data
- the print processing constitutes job processing.
- the job data and the job processing are not particularity limited thereto.
- the information device is not limited to the image forming apparatus.
- the job data could be any type of job data other than the print job
- the job processing could be any type of job processing other than the print processing.
- the information device could be any device, provided that it performs job processing based on job data.
- the authentication server 190 is implemented by, for example, a general-purpose computer such as a personal computer, a workstation, and a server computer.
- the authentication server 190 provides an authentication server function that performs a user authentication of a user who operates the image forming apparatus 170.
- the terminal 110 transmits encrypted print data to the print server 140 in accordance with a user instruction.
- the print server 140 temporarily stores the encrypted print data received from the terminal 110.
- the user operates a control panel of a desired image forming apparatus 170 to obtain the print data stored in the print server 140. Further, the user instructs the image forming apparatus 170 to decrypt the print data using an encryption key that the user possesses to obtain desired printed matter.
- a problem occurs if the print data cannot be decrypted on the print server 140. In other words, it becomes difficult to change print setting information contained in the print data on the print server 140 when the image forming apparatus 170 acquires the print data from the print server 140. For this reason, it is required to satisfy two demands at a time, one being a demand for securing the confidentiality of printed matter and the other being a demand for changing a print setting by the print server 140 at a time of printing instead of by the image forming apparatus 170.
- the terminal 110 separates print data into two parts, that is, a print setting information part and a drawing data part. Further, the terminal 110 selects different types of encryption processing respectively to the separated two parts. Preferably, the encryption processing performed on the drawing data part of the print data is processing of encrypting the drawing data part such that encrypted data is decrypted based on user-specific key information.
- the terminal 110 transmits, to the print server 140, the print data including the encrypted print setting information part and drawing data part. Further, the terminal 110 notifies the print server 140 of information indicating at least the encryption processing that is performed on the print setting information part.
- the print server 140 stores the print data received from the terminal 110. Further, the print server 140 determines, based on the information indicating the encryption processing notified from the terminal 110, whether the print setting information part of the received print data can be changed based on key information that the print server 140 possesses.
- the print server 140 decrypts the setting information part when the determination result indicates that the setting can be changed.
- the print server 140 in response to receiving change information requesting a change to the setting information part, the print server 140 reflects the change information on the decrypted setting information part to change the setting information part. Further, the print server 140 re-encrypts the changed setting information part such that the re-encrypted part can be decrypted based on the user-specific key information.
- the image forming apparatus 170 receives the print data from the print server 140 and decrypts the received print data. Further, the image forming apparatus 170 integrates the setting information part and the drawing data part. Preferably, the image forming apparatus 170 can decrypt each part of the received job data based on the user-specific key information. The image forming apparatus 170 can perform print processing based on the integrated print data.
- the drawing data part of the print data is kept confidential on a communication path and on the print server 140, while the print setting information part of the print data can be changed on the print server 140.
- the information forming system 100 includes the authentication server 190 that performs authentication processing.
- the image forming apparatus 170 may perform authentication processing.
- the image forming system 100 may not include the authentication server 190 that is surrounded by a dotted line 104 in FIG. 1 .
- FIG. 2 is a block diagram illustrating a hardware configuration of the print server 140 according to the present embodiment.
- the print server 140 is implemented by, for example, a general-purpose computer.
- the print server 140 illustrated in FIG. 2 includes a central processing unit (CPU) 12 with a single core or multiple cores, a random access memory (RAM) 14, a read only memory (ROM) 16, and a hard disc drive (HDD) 18, and a communication interface device 24.
- the print server 140 may include an input device 20 and a display device 22 as needed.
- the CPU 12 controls an entire operation of the print server 140 such as internal processing.
- the RAM 14 provides a work area for the CPU 12.
- the ROM 16 stores control programs such as a Basic Input/Output System (BIOS).
- BIOS Basic Input/Output System
- the HDD 18 stores an operating system (OS) for controlling a computer apparatus, a program for implementing functional blocks described later, various system information, and various setting information.
- OS operating system
- the input device 20 is an input device such as a mouse, a keyboard, a touchscreen panel.
- the display device 22 is a display device such as a liquid crystal display (LCD) device and an organic electro luminescence (EL) display.
- the input device 20 and the display device 22 provide a user interface to accept inputs of various instructions from an operator.
- the communication interface device 24 is an interface device such as a network interface card (NIC) that connects the print server 140 to the network 102.
- NIC network interface card
- the print server 140 reads out the programs from the ROM 16 or the HDD 18 and loads the programs to the work area provided by the RAM 14 to implement each of functional blocks and operations described later, under control of the CPU 12.
- the terminal 110 and the authentication server 190 can have the similar or substantially the similar hardware configuration with the addition or deletion of suitable hardware components to or from the hardware components illustrated in FIG. 2 .
- FIG. 3 is a block diagram illustrating a hardware configuration of the image forming apparatus 170 according to the present embodiment.
- the image forming apparatus 170 is implemented by an image forming apparatus that has an image formation function and an image reading function.
- the image forming apparatus 170 illustrated in FIG. 3 includes, on a controller board 50, a CPU 52 with a single core or multiple cores, a ROM 54, a RAM 56, an image memory 58, and a communication interface device 60.
- the RAM 56 provides a work area for the CPU 52.
- the image forming apparatus 170 includes a control panel 62, a scanner 64, and a plotter 66, which are connected to the controller board 50.
- the CPU 52 controls an operation of the image forming apparatus 170 such as image processing.
- the ROM 54 stores programs that enable the image forming apparatus 170 to function.
- the RAM 56 provides a work area used by the CPU 52 when executing programs stored in the ROM 54 or an HDD.
- the image memory 58 provides a work area used for image processing in scanning or printing.
- the communication interface device 60 is an interface device such as a wireless LAN adopter and a NIC in compliance with IEEE 802.11 standard. The communication interface device 60 connects the image forming apparatus 170 to the network 102.
- the control panel 62 is connected to the controller board 50.
- the control panel 62 includes a display device such as a LCD panel and an organic EL display and an input device such as a touchscreen panel.
- the control panel 62 provides a user interface to display an operation screen that accepts inputs of various instructions from an operator and to display a screen.
- the scanner 64 performs scan processing in response to an execution instruction for scanning from the controller board 50.
- the plotter 66 performs image forming processing based on the print data from the terminal 110 or the scan data from the scanner 64 in response to an execution instruction for image formation from the controller board 50.
- FIGs. 4A to 4D are block diagrams illustrating functional configurations of apparatuses constituting the image forming system 100 according to the present embodiment. More specifically, FIGs. 4A to 4D illustrate, respectively, a module configuration 210 included in the terminal 110, a module configuration 240 included in the print server 140, a module configuration 270 included in the image forming apparatus 170, and a module configuration 290 included in the authentication server 190.
- the module configuration 210 of the terminal 110 includes a print data divider 212, an encryption system selector 214, and a print data encryption unit 216, an encryption information adder 218, and a print data transmitter 220.
- FIG. 5 is a view illustrating a typical data structure of print data.
- print data 300 includes a print-setting information part 302 and a drawing data part 304.
- the print-setting information part 302 includes a job name, various types of print-setting information, and various types of attribute information.
- the drawing data part 304 includes page description language (PDL) data that describes a drawing content of printed matter in a PDL. Confidential information of printed matter is usually contained in the drawing data part 304.
- the print-setting information part 302 and the drawing data part 304 constitute, respectively, a setting information part and a substantive data part in the present embodiment.
- the print data divider 212 divides the received print data 300 into the print-setting information part 302 and the drawing data part 304.
- the encryption system selector 214 selects different systems of encryption processing applied to, respectively, the print-setting information part 302 and the drawing data part 304 of the print data 300.
- the encryption system applied to each of the print-setting information part 302 and the drawing data part 304 is selected based on a setting that is configured in advance.
- the print data encryption unit 216 encrypts the print-setting information part 302 and the drawing data part 304 respectively with the different systems of encryption selected by the encryption system selector 214.
- the encryption system selector 214 constitutes selecting means of a terminal in the present embodiment.
- the encryption system applied to each of the print-setting information part 302 and the drawing data part 304 is selected in accordance with a setting that is configured in advance as described above.
- the encryption system selector 214 can select, as the encryption processing applied to the print-setting information part 302, processing that encrypts the print-setting information part 302 such that the encrypted part is later decrypted based on key information specific to the print server 140.
- the encryption system selector 214 can select, as the encryption processing applied to the drawing data part 304, processing that encrypts the drawing data part 304 such that the encrypted part is later decrypted based on user-specific key information.
- the encryption information adder 218 adds encryption information to each of the print-setting information part 302 and the drawing data part 304.
- the encryption information indicates which system of encryption is applied to each of the part 302 and 304.
- the print data transmitter 220 transmits print data 310 (described later with reference to FIG. 6 ) containing the encrypted print-setting information part and the encrypted drawing data part to the print server 140. As the print data 310 is transmitted to the print server 140, the encryption information added to the print data 310 is also notified to the print server 140.
- the encryption information adder 218 and the print data transmitter 220 constitute notifying means of the terminal in the present embodiment. It should be noted that this encryption information contains information indicating the encryption system and a type of key used for the encryption. In other words, the encryption information does not contain the key information itself to be used for decryption.
- FIG. 6 is an illustration for describing an overall flow of data in the image forming system 100 according to the present embodiment. It should be noted that FIG. 6 illustrates an example in which encryption processing using a print server's public key is set to the print-setting information part 302, whereas encryption processing using a user-specific public key is set to the drawing data part 304.
- the terminal 110 is able to acquire the print server's public key and the user-specific public key as necessary.
- the print-setting information part 302 of the print data 300 is encrypted using the print server's public key
- the drawing data part 304 is encrypted using a job-specific common key.
- This job-specific common key is a temporary encryption key of a common key system that is generated specific to a job of specific print data.
- the job-specific common key is further encrypted using the user-specific public key.
- the encrypted print-setting information part 312 can be decrypted using a print server's secret key corresponding the print server's public key.
- the encrypted drawing data part 314 can be decrypted using a user-specific secret key corresponding to the user-specific public key.
- the print-setting information part 302 is encrypted with a public key encryption system using the print server's public key.
- a description is given of an example in which the drawing data part 304 encrypted with a common key encryption system using the job-specific common key, which is later encrypted with a public key encryption system using the user-specific public key. It should be noted that these are just examples and any suitable encryption processing is performed on each data part.
- either encryption of the part using a public key encryption system, or encryption of the part using a common key encryption system and encryption of the common key using a public key system can be performed independently.
- the print data 310 including the encrypted print-setting information part 312 and the encrypted drawing data part 314 is transmitted from the terminal 110 to the print server 140 together with the encrypted job-specific common key 316, as illustrated in FIG. 6 .
- the module configuration 240 of the print server 140 includes, a print data receiver 242, a setting changeability determiner 244, a print data storage unit 246, a print-setting information decryption unit 248, a print setting changer 250, a print-setting information encryption unit 252, and a print data transmitter 254.
- the print data receiver 242 receives the print data 310 including the print-setting information part 312 and the drawing data part 314, which are obtained by encrypting the print-setting information part 302 and the drawing data part 304, respectively, by different encryption processings.
- the print data receiver 242 constitutes receiving means of the data storage apparatus in the present embodiment.
- the setting changeability determiner 244 determines, based on the encryption information added to the print data 310, whether the print-setting information part 312 of the received print data 310 can be decrypted using the print server's secret key. In other words, the setting changeability determiner 244 determines whether the print setting can be changed.
- the encryption information contains information indicating the encryption system that is applied to the print-setting information part 302 when obtaining the print-setting information part 312 and information indicating a type of the key used for encrypting the print-setting information part 302.
- the setting changeability determiner 244 determines that it is possible to decrypt the encrypted print-setting information part 312 and to change the print setting. Based on the determination result, the setting changeability determiner 244 adds, to the print data 310, print-setting changeability information indicating whether the print setting can be changed.
- the setting changeability determiner 244 constitutes determining means of the data storage apparatus in the present embodiment.
- the print data storage unit 246 stores print data received from the terminal 110. Preferably, the print data storage unit 246 stores the print data 310 together with the print-setting changeability information. A storage area in which the print data is stored is implemented by the HDD 18 of the print server 140. The print data storage unit 246 constitutes storage means of the data storage apparatus in the present embodiment.
- the print setting changer 250 changes the print setting using the print-setting information decryption unit 248 and the print-setting information encryption unit 252, when it is determined that the print setting can be changed.
- the print-setting information decryption unit 248 decrypts the print-setting information part 312 based on the encryption information, when it is determined that the print setting can be changed.
- the print setting changer 250 updates the decoded print-setting information part to reflect a change based on change information received with the request for changing the print setting.
- the print-setting information encryption unit 252 re-encrypts the print-setting information part that is updated to reflect the change.
- the print-setting information decryption unit 248 constitutes decrypting means in the present embodiment.
- the print setting changer 250 constitutes changing means in the present embodiment. Further, the print-setting information encryption unit 252 constitutes encrypting means in the present embodiment.
- the print data transmitter 254 transmits print data requested by the received request to the image forming apparatus 170.
- the print data may include the encrypted drawing data part and the re-encrypted print-setting information part.
- the print data transmitter 254 constitutes transmission means of the data storage apparatus in the present embodiment.
- the print server 140 receives the print data 310 from the terminal 110 and stores the received print data 310.
- the encrypted print-setting information part 312 is decrypted using the print server's secret key corresponding to the print server's public key that is used for encrypting the print-setting information part 302 at the terminal 110. With this decryption processing, the print setting can be read out and changed in subsequent processing.
- the print server 140 receives change information 324.
- the print server 140 updates a decrypted print-setting information part 322 to reflect a change based on the received change information 324 as needed. Further, the print server 140 re-encrypts a changed print-setting information part 332 using the user-specific public key. A re-encrypted print-setting information part 342 can be decrypted using the user-specific secret key corresponding to the user-specific public key. Accordingly, the entirety of the print data 340 can be decrypted using the user-specific secret key (with the encrypted job-specific common key 316). It should be noted that the print server 140 can acquired the user-specific public key as necessary.
- the print data 340 including the print-setting information part 342 that is encrypted using the user-specific public key and the encrypted drawing data part 314 is transmitted to the image forming apparatus 170 together with the encrypted job-specific common key 316.
- the module configuration 270 of the image forming apparatus 170 includes, a print data receiver 272, a print data decryption unit 274, a print data integration unit 276, a print processing executor 278, an authentication information reader 280, and an authentication inquiry unit 282.
- the image forming apparatus 170 includes an authentication information reading apparatus such as an integrated circuit (IC) card reader that reads an authentication device such as an IC card.
- the authentication device such as an IC card stores user's authentication information or identification information associated with the authentication information, and the user-specific secret key in a secured manner.
- an authentication procedure is requested by placing the IC card over the IC card reader or inserting the IC card into the IC card reader, the authentication information stored in the IC card is read out for execution of authentication processing.
- the user-specific secret key stored in the IC card becomes available.
- the IC card is just an example of the authentication device, and any suitable device that can be carried by a user and store a secret key in a secured manner may be used, such as a portable terminal like a smartphone.
- a secret key stored in the authentication device may be a key that is generated and managed in organizations such as public offices, educational institutes, and enterprises.
- the authentication information reader 280 communicates with the authentication device such as an IC card to read out the authentication information stored therein.
- the authentication information reader 280 constitutes reading means of the information device in the present embodiment.
- the authentication inquiry unit 282 transmits an authentication inquiry based on the authentication information to the authentication server 190.
- the authentication inquiry unit 282 determines, based on the authentication result received from the authentication server 190, that the authentication has succeeded and an appropriate use authority is granted, the authentication inquiry unit 282 makes the user-specific secret key in the authentication device available.
- the authentication inquiry unit 282 constitutes authentication means of the information device in the present embodiment.
- the print data receiver 272 receives encrypted print data from the print server 140.
- the print data decryption unit 274 determines which encryption processing is performed on each of the print-setting information part and the drawing data part based on the encryption data, and decrypts each part of the received print data.
- the print data integration unit 276 integrates the decrypted print-setting information part and the decrypted drawing data part.
- the print processing executor 278 controls the plotter 66 illustrated in FIG. 3 based on the integrated print data to execute print processing. It should be noted that the print data receiver 272 constitutes receiving means of the information device in the present embodiment.
- the print data decryption unit 274 constitutes decrypting means of the information device in the present embodiment. Further, the print data integration unit 276 constitutes integrating means of the information device in the present embodiment.
- the print data decryption unit 274 decrypts the print-setting information part 342 and the drawing data part 314 using the user-specific secret key that is made available after the authentication. More specifically, the print data decryption unit 274 decrypts the encrypted print-setting information part 342 and the encrypted job-specific common key 316 using the user-specific secret key. Further, the print data decryption unit 274 decrypts, using the decrypted job-specific common key, the drawing data part 314 that has been encrypted at the terminal 110 using the job-specific common key.
- the module configuration 290 of the authentication server 190 includes an authentication inquiry receiver 292, an authentication management unit 294, and an authentication result transmitter 296.
- the image forming apparatus 170 transmits the authentication information that is read out by the authentication information reader 280 to the authentication server 190.
- the authentication inquiry receiver 292 receives an authentication inquiry having the authentication information attached thereto.
- the authentication inquiry receiver 292 transfers the authentication information to the authentication management unit 294 to request authentication processing.
- the authentication management unit 294 checks the authentication information against user information to perform authentication processing. When the authentication succeeds, the authentication management unit 294 grants a use authority. When the authentication fails, the authentication management unit does not grant a user authority.
- the authentication result transmitter 296 sends back a response indicating the authentication result by the authentication management unit 294 to the image forming apparatus 170 from which the inquiry is transmitted.
- the image forming system 100 includes the authentication server 190 that performs authentication processing.
- the image forming system 100 may not include the authentication server 190.
- the image forming apparatus 170 includes an authentication management unit corresponding to the authentication management unit 294. This authentication management unit of the image forming apparatus 170 performs authentication processing in response to receiving the authentication inquiry and grants a use authority when the authentication succeeds.
- the print setting changer 250 of the print server 140 receives change information from an external apparatus such as the terminal 110 and the image forming apparatus 170.
- the change information indicates a change to the print-setting information part of the print data stored in the print data storage unit 246.
- the module configuration 270 of the image forming apparatus 170 further includes an operation acceptance unit 284, a screen display unit 286, and a data communication unit 288.
- the data communication unit 288 communicates with the print setting changer 250 of the print server 140 to transmit a request for acquiring a job list, a request for acquiring print-setting information of specific print data, and a request for changing the print-setting information of print data. Further, the data communication unit 288 acquires a job list information, the print-setting information of the print data, and a result of changing the print setting from the print server 140. Further, the data communication unit 288 acquires, together with the job list information for example, print-setting changeability information indicating whether the print-setting information part of the specific print data can be changed using the print server's secret key. The data communication unit 288 constitutes acquiring means and transmitting means of the information device in the present embodiment.
- the screen display unit 286 displays various screens such as a job list screen on a display of the control panel 62 based on the acquired job list information and the print-setting information of print data.
- the screen display unit 286 displays information of the print-setting information part and a print-setting change screen to accept an instruction for a change to the print-setting information part.
- the operation acceptance unit 284 accepts a user instruction via various screens.
- the operation acceptance unit 284 is implemented by, for example, an input device of the control panel 62.
- the operation acceptance unit 284 accepts an instruction for specifying a change to the setting information part, when the print-setting changeability information indicates that the print setting can be changed.
- the operation acceptance unit 284 and the screen display unit 286 constitute, respectively, operation means and display means of the information device in the present embodiment.
- FIG. 7 is an example of a print-setting change screen 400 displayed on a display of the control panel 62 of the image forming apparatus 170 in the image forming system 100 according to the present embodiment. It should be noted that the print-setting change screen 400 of FIG. 7 is displayed before an actual print processing is performed in the image forming apparatus 170.
- the print-setting change screen 400 includes a job name display 402, a number-of-copies key 404, a reset key 406, radio buttons 408a and 408b, radio buttons 410a and 410b, a print key 412, and a cancel key 414.
- the job name display 402 indicates a job name.
- the number-of-copies key 404 accepts an instruction for changing a number of copies.
- the radio buttons 408a and 408b accept selection of single-sided printing or duplex printing.
- the radio buttons 410a and 410b accept selection of color printing or monochrome printing.
- the print key 412 accepts an instruction for execution of printing.
- the cancel key 414 accepts instruction for cancel of printing.
- the print-setting change screen 400 includes these setting change items to be selected or specified by a user to implement a change to the stored print settings.
- the operation acceptance unit 284 accepts an instruction for changing the setting information part via the print-setting change screen 400.
- the data communication unit 288 transmits, to the print server 140, the change information based on the instruction for changing the print-setting information part.
- the print setting changer 250 of the print server 140 receives the change information indicating a change to the print-setting information part input via the print-setting change screen 400.
- the print setting changer 250 can further provide an external apparatus such as the terminal 110 that includes a general-purpose browser with a screen that enables a user to input change information indicating a change to the print-setting information part of the print data stored in the print data storage unit 246.
- the print setting changer 250 has a web server function to provide the print-setting change screen as a web user interface (Web UI).
- FIG. 8 is a flowchart illustrating steps in an operation of storing print data from the terminal 110 to the print server 140 in the image forming system 100 according to the present embodiment.
- the terminal 110 receives a user instruction for printing and generates print data by a printer driver.
- the terminal 110 refers to a setting to select an encryption system to be applied to each part of the print data.
- the terminal 110 separates the print data into the print-setting information part and the drawing data part.
- the terminal 110 encrypts the print-setting information of the print data using the encryption system that is selected in advance.
- the terminal 110 encrypts the drawing data part of the print data using the encryption system that is selected in advance.
- the terminal 110 adds the encryption information to the encrypted print data.
- the terminal 110 transmits, to the print server 140, the encrypted print data to which the encryption data is added. With these processing steps, the print server 140 is notified of the encryption information indicating the encryption processing applied to the setting information part.
- the print server 140 receives the print data from the terminal 110.
- the print server 140 determines whether the print setting can be changed based on the encryption information. Further, at S109, the print server 140 adds the print-setting changeability information to the print data.
- the print server 140 stores the print data received from the terminal 110.
- the print server 140 transmits the storage result to the terminal 110.
- the terminal 110 displays the storage result on a display, for example, to finish this operation of storing the print data at S112. Then, the operation ends.
- FIG. 9 is an example illustration for describing a flow of data in an operation of separating and encrypting the print data performed by the terminal 110 according to the present embodiment.
- the print data 300 received from the printer driver is separated into the print-setting information part 302 and the drawing data part 304 by the print data separation processing (S103).
- the print-setting information part 302 is encrypted based on the encryption system setting by the encryption processing (S104) using the print server's public key.
- the drawing data part 304 is encrypted based on the encryption system setting by the encryption processing (S105-1) using the job-specific common key.
- the job-specific common key is further encrypted by the encryption processing (S105-2) using the user-specific public key.
- the encrypted print-setting information part 312, drawing data part 314, and job-specific common key 316 is transmitted to the print server 140 together with the encryption information generated based on the setting of encryption system.
- FIG. 10 is an example illustration for describing a flow of data in an operation of storing the print data performed by the print server 140 according to the present embodiment.
- the print server 140 receives the encrypted print data 310 at the data reception processing (S108).
- the print server 140 extracts the encryption information 318 from the print data 310, and determines, based on a type of the key used for the encryption, whether or not the print server 140 is able to decrypt the encrypted print-setting information part 312 at the determination processing (S109).
- the print-setting changeability information 320 is set indicating that the print-setting can be changed.
- the print server 140 determines that it cannot decrypt the encrypted print-setting information part 312
- the print-setting changeability information 320 is set indicating that the print setting cannot be changed.
- the print-setting changeability information 320 is stored in the print server 140 at the storage processing (S110) together with the encrypted print-setting information part 312, the encrypted drawing data part 314, and the encrypted job-specific common key 316 included in the print data 310.
- FIGs. 11A and 11B are a flowchart illustrating steps in an operation of acquiring the print data from the print server 140 to the image forming apparatus 170 to perform printing processing in the image forming system 100 according to the present embodiment.
- the image forming apparatus 170 performs user authentication processing. A detailed description is given later of the user authentication processing.
- the image forming apparatus 170 transmits a request for acquiring a job list of the authorized user.
- the print server 140 receives the request for acquiring a job list from the image forming apparatus 170.
- the print server 140 acquires the job list of the user from the print data storage unit 246.
- the print server 140 transmits the job list to the image forming apparatus 170.
- the print server 140 transmits, to the image forming apparatus 170, the print-setting changeability information of each piece of print data together with the job list.
- the screen display unit 286 of the image forming apparatus 170 displays a job list screen on a display.
- the operation acceptance unit 284 accepts a user selection of print data via the job list screen on the display.
- the image forming apparatus 170 reads out the print-setting changeability information of the selected print data and determines whether the print setting can be changed.
- the operation proceeds to S209.
- the image forming apparatus 170 displays the print-setting change screen as illustrated in FIG. 7 .
- the image forming apparatus 170 determines whether the user gives an instruction for changing the print setting via the print-setting change screen. When the image forming apparatus 170 determines that the instruction for changing the print setting is given (S210: YES), the operation proceeds to S209. At S211, the image forming apparatus 170 ads setting change information that is input via the print-setting change screen to a request for acquiring print data. This request for acquiring print data may be referred to as a "print-data acquisition request" hereinafter. At S212, the image forming apparatus 170 transmits, to the print server 140, the print-data acquisition request to which the setting change information is added. By contrast, when the image forming apparatus 170 determines that the print setting cannot be changed (S208: NO), or when the image forming apparatus 170 determines that the instruction for changing the print setting is not given (S210: NO), the operation proceeds to S212.
- the print server 140 receives the print-data acquisition request from the image forming apparatus 170.
- the print server 140 acquires print data corresponding to the request from the print data storage unit 246.
- the print server 140 determines whether the print-data acquisition request includes the setting change information.
- the print server 140 determines that the print-data acquisition request includes the setting change information (S215: YES)
- the operation proceeds to S216. It should be noted that the fact that the setting change information is included in the print-data acquisition request means that the user has given an instruction for changing the print setting as well as that the print setting of the print data can be changed.
- the print server 140 decrypts the print-setting information part in the print data.
- the print server 140 updates the print setting based on the setting change information.
- the print server 140 re-encrypts the print-setting information part.
- the print server 140 transmits the print data to the image forming apparatus 170.
- the image forming apparatus 170 receives the print data from the print server 140.
- the image forming apparatus 170 decrypts the print-setting information part.
- the image forming apparatus 170 decrypts the drawing data part.
- the image forming apparatus 170 integrates the decrypted print-setting information part and the decrypted drawing data part.
- the image forming apparatus 170 performs print processing based on the integrated print data and finishes the print processing.
- the image forming apparatus 170 transmits the print result to the print server 140.
- the print server 140 records the completion of a print job or deletes the print data of the completed print job as needed. Then, the operation ends.
- FIG. 12 is an example illustration for describing a flow of data in an operation of transmitting print data in response to a request for acquiring print data performed by the print server 140 according to the present embodiment. It should be noted that the data flow illustrated in FIG. 12 corresponds to a case in which the print-data acquisition request including the setting change information is transmitted from the image forming apparatus 170.
- the print server 140 receives a print-data acquisition request 350 at the reception processing (S213).
- the print server 140 acquires the print data 310 from the print data storage unit 246 based on acquisition request information 352 included in the print-data acquisition request 350 at the data acquisition processing (S214).
- the print server 140 determines that the print setting can be changed at the determination processing (S215)
- the print-setting information part 312 is decrypted at the decryption processing (S216) using the print server's secret key.
- the decrypted print-setting information part 322 is obtained.
- the determination processing (S215) may be performed based on the print-setting changeability information 320 included in the print data 310.
- the determination processing (S215) may be performed based on whether or not the print-data acquisition request 350 includes setting change information 354.
- the decrypted print-setting information part 322 is updated based on the setting change information 354 included in the print-data acquisition request 350 at the setting change processing (S217).
- the updated print-setting information part 332 is re-encrypted by the encryption processing (S218) using the user-specific public key.
- the re-encrypted updated print-setting information part 342 is transmitted to the image forming apparatus 170 together with the encryption information 318, the encrypted job-specific common key 316, and the encrypted drawing data part 314.
- FIG. 13 is a flowchart illustrating steps in authentication processing performed by the image forming apparatus 170 and the authentication server 190 in cooperation with each other in the image forming system 100 according to the present embodiment.
- the authentication information reader 280 of the image forming apparatus 170 acquires authentication information from the authentication device.
- the image forming apparatus 170 transmits an authentication inquiry together with the acquired authentication information to the authentication server 190.
- the authentication server 190 receives the authentication inquiry from the image forming apparatus 170.
- the authentication server 190 searches a directory database for the authentication information.
- the authentication server 190 acquires the search result.
- the authentication server 190 determines whether the user information matches the authentication information based on the search result.
- the authentication server 190 sets a use authority for using applications, etc., to the user.
- the authentication server 190 transmits the authentication result to the image forming apparatus 170.
- the image forming apparatus 170 receives the authentication result from the authentication server 190.
- the image forming apparatus 170 determines whether the use authority is present.
- the image forming apparatus 170 determines that the use authority is present (S310: YES)
- the image forming apparatus 170 enables the user to log in the image forming apparatus 170 to allow the user to use applications or functions that are set by the use authority. Then, the operation ends. With this processing, the user-specific secret key in the authentication device is made available.
- the image forming apparatus 170 determines that the use authority is not preset (S310: NO)
- the operation proceeds to S312.
- the image forming apparatus 170 denies the login by the user. Then, the operation ends. In this case, a notification indicating a login failure is displayed on a display of the control panel 62 of the image forming apparatus 170, and the user is not allowed to use the applications or functions.
- the authentication information acquired from the authentication device at S301 is transmitted to the authentication management unit of the image forming apparatus 170.
- This authentication management unit of the image forming apparatus 170 searches for the corresponding authentication information.
- a use authority for using applications is set to the user in the image forming apparatus 170.
- the user-specific secret key is also made available.
- a notification indicating a login failure is displayed on a display of the control panel 62 of the image forming apparatus 170.
- the change of the print setting is performed when the image forming apparatus 170 acquires print data from the print server 140.
- the terminal 110 transmits, to the print server 140, a request for acquiring a job list of the user using a browser.
- the print server 140 receives the request for acquiring a job list from the terminal 110.
- the print server 140 acquires the job list of the user.
- the print server 140 transmits screen data containing the job list to the terminal 110.
- the terminal 110 In response to receiving the screen data containing the job list from the print server 140 (S405), the terminal 110 displays a job list screen on the browser. At S406, the terminal 110 accepts a user selection of a print job via the input device. At S407, the terminal 110 reads out, from the job list information, the print-setting changeability information of the selected print job to determine whether the print setting can be changed. When the terminal 110 determines that the print setting can be changed (S407: YES), the operation proceeds to S408. At S408, terminal 110 transmits a request for the print-setting change screen to the print server 140, receives the print-setting change screen from the print server 140, and displays the print-setting change screen on the browser. The print-setting change screen enables the user to input the setting change information. At S409, the terminal 110 transmits a request for changing the print setting to the print server 140. The request for changing the print setting includes the setting change information added thereto.
- the print server 140 receives the request for changing the print setting from the terminal 110.
- the print server 140 acquires the print data corresponding to the request for change.
- the print server 140 decrypts the print-setting information part of the print data.
- the print server 140 updates the print-setting information part to reflect the setting change information.
- the print server 140 re-encrypts the print-setting information part and stores the re-encrypted part.
- the print server 140 transmits the result of changing the print setting to terminal 110.
- the terminal 110 receives the result of changing the print setting from the print server 140.
- the terminal 110 displays the change result on a browser to finish the operation of changing the print setting. Then, the operation ends.
- the terminal 110 determines that the print setting cannot be changed (S407: NO)
- the operation directly proceeds to S417.
- an information processing system a job processing method, a data storage apparatus, and an information device are provided, in which a substantive data part of job data is kept confidential on a communication path and at the data storage apparatus, while a setting information part of the job data can be changed at the data storage apparatus.
- the job data which has been encrypted, is transferred via the communication path.
- the substantive data part which may contain confidential information, has been encrypted.
- the setting information part is decrypted at the data storage apparatus, the setting information part is decrypted to accept the change of setting.
- the functional blocks as described above are implemented by a computer-executable program written by programming languages such as an assembler language, C, and object-oriented programming languages such as C++, C#, and Java (registered trademark).
- the program may be distributed via a telecommunication line as being stored in a computer-readable storage medium such as a ROM, an electrically erasable and programmable read only memory (EEPROM), an electrically programmable read only memory (EPROM), a flash memory, a flexible disk, a compact disc read only memory (CD-ROM), a compact disc rewritable (CD-RW), a digital versatile disk (DVD)-ROM, a DVD-RAM, a DVD-RW, a Blu-ray disc, a secure digital (SD) card, and a magneto-optical disc (MO).
- a computer-readable storage medium such as a ROM, an electrically erasable and programmable read only memory (EEPROM), an electrically programmable read only memory (EPROM),
- the present invention can be implemented in any convenient form, for example using dedicated hardware, or a mixture of dedicated hardware and software.
- the present invention may be implemented as computer software implemented by one or more networked processing apparatuses.
- the processing apparatuses can compromise any suitably programmed apparatuses such as a general purpose computer, personal digital assistant, mobile telephone (such as a WAP or 3G-compliant phone) and so on. Since the present invention can be implemented as software, each and every aspect of the present invention thus encompasses computer software implementable on a programmable device.
- the computer software can be provided to the programmable device using any conventional carrier medium (carrier means).
- the carrier medium can compromise a transient carrier medium such as an electrical, optical, microwave, acoustic or radio frequency signal carrying the computer code.
- transient medium is a TCP/IP signal carrying computer code over an IP network, such as the Internet.
- the carrier medium can also comprise a storage medium for storing processor readable code such as a floppy disk, hard disk, CD ROM, magnetic tape device or solid state memory device.
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Human Computer Interaction (AREA)
- Computer Security & Cryptography (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Accessory Devices And Overall Control Thereof (AREA)
- Facsimiles In General (AREA)
Description
- The present invention relates to an information processing system, a job processing method, and carrier means.
- A printing system is known that includes a terminal, a print server, and one or more image forming apparatuses. In this printing system, the terminal encrypts print data using key information that a user possesses, and the encrypted print data is temporarily stored in the print server. The print data stored in the print server is printed from a desired image forming apparatus from among the one or more image forming apparatuses. In this printing system, the encrypted print data is decrypted with authentication information of the user when the print data is printed. Because the print data is encrypted using the key information that the user possesses, information contained in the print data is kept confidential on the print server.
- However, in the printing system according to the background art, the print data cannot be decrypted on the print server. For this reason, when the image forming apparatus acquires the print data from the print server, it is difficult to change print setting information contained in the print data at the print server. In other words, it is difficult to satisfy two demands at a time, one being a demand for securing the confidentiality of printed matter and the other being a demand for changing a print setting at a time of printing.
-
JP-4018645-B2 JP-2005-216029-A JP-4018645-B2 - However, there is still a need for the development a technique that satisfies two demands at a time, one being a demand for securing the confidentiality of a data carrying medium such as printed matter and the other being a demand for changing the print setting.
-
US 2007/002351 A1 discloses a job ticket issuing device including a document encryption processing unit for encrypting document data with a document data encryption key; and a job ticket encryption processing unit for encrypting a job ticket, including information about a content of job processing with respect to the document data, with a job ticket encryption key which is different from the document data encryption key. - The invention is defined by the appended claims.
- In one aspect of the present invention, an information processing system (100) includes a terminal apparatus (110), a data storage apparatus (140), and an information device (170) according to claim 1.
- According to one aspect of the present invention, the confidentiality of job data is secured while the setting of the job data can be changed.
- A more complete appreciation of the disclosure and many of the attendant advantages and features thereof can be readily obtained and understood from the following detailed description with reference to the accompanying drawings, wherein:
-
FIG. 1 is a schematic diagram illustrating a configuration of an image forming system according to an embodiment of the present invention; -
FIG. 2 is a block diagram illustrating a hardware configuration of a print server according to an embodiment of the present invention; -
FIG. 3 is a block diagram illustrating a hardware configuration of an image forming apparatus according to an embodiment of the present invention; -
FIGs. 4A to 4D are block diagrams illustrating functional configurations of apparatuses constituting the image forming system ofFIG. 1 according to an embodiment of the present invention; -
FIG. 5 is a view illustrating a typical data structure of print data according to an embodiment of the present invention; -
FIG. 6 is an illustration for describing an overall flow of data in the image forming system ofFIG. 1 according to an embodiment of the present invention; -
FIG. 7 is an example of a print-setting change screen displayed on a control panel of the image forming apparatus ofFIG. 3 in the image forming system ofFIG. 1 according to an embodiment of the present invention; -
FIG. 8 is a flowchart illustrating steps in an operation of storing print data from a terminal to the print server in the image forming system ofFIG. 1 according to an embodiment of the present invention; -
FIG. 9 is an example illustration for describing a flow of data in an operation of separating and encrypting the print data performed by the terminal according to an embodiment of the present invention; -
FIG. 10 is an example illustration for describing a flow of data in an operation of storing print data performed by the print server according to an embodiment of the present invention; -
FIGs. 11A and11B are a flowchart illustrating steps in an operation of acquiring print data from the print server to the image forming apparatus to perform printing processing in the image forming apparatus according to an embodiment of the present invention; - FTG. 12 is an example illustration for describing a flow of data in an operation of transmitting print data in response to a request for acquiring print data performed by the print server according to an embodiment of the present invention;
-
FIG. 13 is a flowchart illustrating steps in authentication processing performed by the image forming apparatus and an authentication server in cooperation with each other according to an embodiment of the present invention, and -
FIG. 14 is a flowchart illustrating steps in an operation of changing print setting of print data stored in the print server in response to a request form the terminal according to an embodiment of the present invention. - The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the present invention. As used herein, the singular forms "a", "an" and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It will be further understood that the terms "includes" and/or "including", when used in this specification, specify the presence of stated features, integers, steps, operations, elements, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, and/or groups thereof.
- In describing example embodiments shown in the drawings, specific terminology is employed for the sake of clarity. However, the present disclosure is not intended to be limited to the specific terminology so selected and it is to be understood that each specific element includes all technical equivalents that operate in a similar manner, within the scope of the claims.
- An example embodiment of the present invention will be described hereinafter with reference to drawings.
- Hereinafter, a description is given of an example in which an
image forming system 100, aprint server 140, and animage forming apparatus 170 are, respectively, examples of an information processing system, a data storage apparatus, and an information device. -
FIG. 1 is a schematic diagram illustrating a configuration of theimage forming system 100 according to the present embodiment. As illustrated inFIG. 1 , theimage forming system 100 includes one ormore terminals 110, theprint server 140, one or moreimage forming apparatuses 170, and anauthentication server 190. The one ormore terminal 110, theprint server 140, the one or moreimage forming apparatuses 170, and theauthentication server 190 are connected to one another via a network 120 such as a local area network (LAN). Accordingly, they can exchange data with one another. It should be noted that, although inFIG. 1 , theimage forming system 100 includes oneterminal 110 as an example of a terminal apparatus and two image forming apparatuses 170a and 170b, each being an example of an information device, there may be any suitable number of terminal devices and information devices. - Examples of the
terminal 110 include a general-purpose computer such as a desktop computer, a laptop computer, and a tablet computer, and a mobile terminal such as a smartphone. Theterminal 110 is installed with an application for creating text documents and a printer driver for generating print data, for example. Theterminal 110 issues a print job in accordance with a user instruction, and thereby the user can obtain printed matter. - For example, the
print server 140 is implemented by a general-purpose computer such as a personal computer, a workstation, and a server computer. In the described embodiment, theprint server 140 provides a server function that stores print data received from theterminal 110 and transmits print data in response to a request from theimage forming apparatus 170. - The
image forming apparatus 170 performs print processing based on print data. Examples ofimage forming apparatus 170 include a multifunction peripheral and a printer. Theimage forming apparatus 170 receives, from theprint server 140, the print data that is transmitted from theterminal 110 and stored in theprint server 140, and performs image formation based on the received print data. - In the described embodiment, the print data constitutes job data, and the print processing constitutes job processing. However, the job data and the job processing are not particularity limited thereto. Further, the information device is not limited to the image forming apparatus. In one or more embodiments not falling under the scope of the claims, the job data could be any type of job data other than the print job, and the job processing could be any type of job processing other than the print processing. Further, the information device could be any device, provided that it performs job processing based on job data.
- The
authentication server 190 is implemented by, for example, a general-purpose computer such as a personal computer, a workstation, and a server computer. Theauthentication server 190 provides an authentication server function that performs a user authentication of a user who operates theimage forming apparatus 170. - In the
image forming system 100 according to the described embodiment, the terminal 110 transmits encrypted print data to theprint server 140 in accordance with a user instruction. Theprint server 140 temporarily stores the encrypted print data received from the terminal 110. The user operates a control panel of a desiredimage forming apparatus 170 to obtain the print data stored in theprint server 140. Further, the user instructs theimage forming apparatus 170 to decrypt the print data using an encryption key that the user possesses to obtain desired printed matter. - In this
image forming system 100, a problem occurs if the print data cannot be decrypted on theprint server 140. In other words, it becomes difficult to change print setting information contained in the print data on theprint server 140 when theimage forming apparatus 170 acquires the print data from theprint server 140. For this reason, it is required to satisfy two demands at a time, one being a demand for securing the confidentiality of printed matter and the other being a demand for changing a print setting by theprint server 140 at a time of printing instead of by theimage forming apparatus 170. - To address this issue, in the
image forming system 100 according to the present embodiment, the terminal 110 separates print data into two parts, that is, a print setting information part and a drawing data part. Further, the terminal 110 selects different types of encryption processing respectively to the separated two parts. Preferably, the encryption processing performed on the drawing data part of the print data is processing of encrypting the drawing data part such that encrypted data is decrypted based on user-specific key information. The terminal 110 transmits, to theprint server 140, the print data including the encrypted print setting information part and drawing data part. Further, the terminal 110 notifies theprint server 140 of information indicating at least the encryption processing that is performed on the print setting information part. - The
print server 140 stores the print data received from the terminal 110. Further, theprint server 140 determines, based on the information indicating the encryption processing notified from the terminal 110, whether the print setting information part of the received print data can be changed based on key information that theprint server 140 possesses. - Preferably, the
print server 140 decrypts the setting information part when the determination result indicates that the setting can be changed. Preferably, in response to receiving change information requesting a change to the setting information part, theprint server 140 reflects the change information on the decrypted setting information part to change the setting information part. Further, theprint server 140 re-encrypts the changed setting information part such that the re-encrypted part can be decrypted based on the user-specific key information. - The
image forming apparatus 170 receives the print data from theprint server 140 and decrypts the received print data. Further, theimage forming apparatus 170 integrates the setting information part and the drawing data part. Preferably, theimage forming apparatus 170 can decrypt each part of the received job data based on the user-specific key information. Theimage forming apparatus 170 can perform print processing based on the integrated print data. - With this configuration, the drawing data part of the print data is kept confidential on a communication path and on the
print server 140, while the print setting information part of the print data can be changed on theprint server 140. - In an embodiment illustrated in
FIG. 1 , a description is given of an example in which theinformation forming system 100 includes theauthentication server 190 that performs authentication processing. However, this is just an example, and in other embodiments, theimage forming apparatus 170 may perform authentication processing. In this case, theimage forming system 100 may not include theauthentication server 190 that is surrounded by a dottedline 104 inFIG. 1 . - Hereinafter, a description is given of secured print processing performed by the
image forming system 100 according to the present embodiment with reference toFIGs. 2 to 14 - First, a description is given of a hardware configuration of each of apparatuses constituting the
image forming system 100 with referenceFIGs. 2 and3 . -
FIG. 2 is a block diagram illustrating a hardware configuration of theprint server 140 according to the present embodiment. Theprint server 140 is implemented by, for example, a general-purpose computer. Theprint server 140 illustrated inFIG. 2 includes a central processing unit (CPU) 12 with a single core or multiple cores, a random access memory (RAM) 14, a read only memory (ROM) 16, and a hard disc drive (HDD) 18, and acommunication interface device 24. Theprint server 140 may include aninput device 20 and adisplay device 22 as needed. - The
CPU 12 controls an entire operation of theprint server 140 such as internal processing. TheRAM 14 provides a work area for theCPU 12. TheROM 16 stores control programs such as a Basic Input/Output System (BIOS). TheHDD 18 stores an operating system (OS) for controlling a computer apparatus, a program for implementing functional blocks described later, various system information, and various setting information. - The
input device 20 is an input device such as a mouse, a keyboard, a touchscreen panel. Thedisplay device 22 is a display device such as a liquid crystal display (LCD) device and an organic electro luminescence (EL) display. Theinput device 20 and thedisplay device 22 provide a user interface to accept inputs of various instructions from an operator. Thecommunication interface device 24 is an interface device such as a network interface card (NIC) that connects theprint server 140 to thenetwork 102. - The
print server 140 according to the present embodiment reads out the programs from theROM 16 or theHDD 18 and loads the programs to the work area provided by theRAM 14 to implement each of functional blocks and operations described later, under control of theCPU 12. Although a description is given heretofore of the hardware configuration of theprint server 140 with reference toFIG. 2 , the terminal 110 and theauthentication server 190 can have the similar or substantially the similar hardware configuration with the addition or deletion of suitable hardware components to or from the hardware components illustrated inFIG. 2 . -
FIG. 3 is a block diagram illustrating a hardware configuration of theimage forming apparatus 170 according to the present embodiment. Theimage forming apparatus 170 is implemented by an image forming apparatus that has an image formation function and an image reading function. Theimage forming apparatus 170 illustrated inFIG. 3 includes, on acontroller board 50, aCPU 52 with a single core or multiple cores, aROM 54, aRAM 56, animage memory 58, and acommunication interface device 60. TheRAM 56 provides a work area for theCPU 52. Further, theimage forming apparatus 170 includes acontrol panel 62, ascanner 64, and aplotter 66, which are connected to thecontroller board 50. - The
CPU 52 controls an operation of theimage forming apparatus 170 such as image processing. TheROM 54 stores programs that enable theimage forming apparatus 170 to function. TheRAM 56 provides a work area used by theCPU 52 when executing programs stored in theROM 54 or an HDD. Theimage memory 58 provides a work area used for image processing in scanning or printing. Thecommunication interface device 60 is an interface device such as a wireless LAN adopter and a NIC in compliance with IEEE 802.11 standard. Thecommunication interface device 60 connects theimage forming apparatus 170 to thenetwork 102. - The
control panel 62 is connected to thecontroller board 50. Thecontrol panel 62 includes a display device such as a LCD panel and an organic EL display and an input device such as a touchscreen panel. Thecontrol panel 62 provides a user interface to display an operation screen that accepts inputs of various instructions from an operator and to display a screen. Thescanner 64 performs scan processing in response to an execution instruction for scanning from thecontroller board 50. Theplotter 66 performs image forming processing based on the print data from the terminal 110 or the scan data from thescanner 64 in response to an execution instruction for image formation from thecontroller board 50. - Hereinafter, a description is given of functional blocks for implementing secured print processing in the
image forming system 100 according to the present embodiment with reference toFIGs. 4A to 4D. FIGs. 4A to 4D are block diagrams illustrating functional configurations of apparatuses constituting theimage forming system 100 according to the present embodiment. More specifically,FIGs. 4A to 4D illustrate, respectively, amodule configuration 210 included in the terminal 110, amodule configuration 240 included in theprint server 140, amodule configuration 270 included in theimage forming apparatus 170, and amodule configuration 290 included in theauthentication server 190. - First, a description is given of a functional configuration of the terminal 110 with reference to
FIG. 4A . As illustrated inFIG. 4A , themodule configuration 210 of the terminal 110 includes aprint data divider 212, anencryption system selector 214, and a printdata encryption unit 216, anencryption information adder 218, and aprint data transmitter 220. - When a print instruction that designates a printer driver corresponding to the
printer driver 18 is given from the application software on the terminal 110, the print data is delivered to theprint data divider 212.FIG. 5 is a view illustrating a typical data structure of print data. - As illustrated in
FIG. 5 ,print data 300 includes a print-settinginformation part 302 and adrawing data part 304. The print-settinginformation part 302 includes a job name, various types of print-setting information, and various types of attribute information. The drawingdata part 304 includes page description language (PDL) data that describes a drawing content of printed matter in a PDL. Confidential information of printed matter is usually contained in thedrawing data part 304. The print-settinginformation part 302 and the drawingdata part 304 constitute, respectively, a setting information part and a substantive data part in the present embodiment. - Referring again to
FIG. 4A , theprint data divider 212 divides the receivedprint data 300 into the print-settinginformation part 302 and the drawingdata part 304. Theencryption system selector 214 selects different systems of encryption processing applied to, respectively, the print-settinginformation part 302 and the drawingdata part 304 of theprint data 300. The encryption system applied to each of the print-settinginformation part 302 and the drawingdata part 304 is selected based on a setting that is configured in advance. The printdata encryption unit 216 encrypts the print-settinginformation part 302 and the drawingdata part 304 respectively with the different systems of encryption selected by theencryption system selector 214. It should be noted that theencryption system selector 214 constitutes selecting means of a terminal in the present embodiment. - In the described embodiment, the encryption system applied to each of the print-setting
information part 302 and the drawingdata part 304 is selected in accordance with a setting that is configured in advance as described above. Preferably, theencryption system selector 214 can select, as the encryption processing applied to the print-settinginformation part 302, processing that encrypts the print-settinginformation part 302 such that the encrypted part is later decrypted based on key information specific to theprint server 140. By contrast, preferably, theencryption system selector 214 can select, as the encryption processing applied to thedrawing data part 304, processing that encrypts the drawingdata part 304 such that the encrypted part is later decrypted based on user-specific key information. - The
encryption information adder 218 adds encryption information to each of the print-settinginformation part 302 and the drawingdata part 304. The encryption information indicates which system of encryption is applied to each of thepart print data transmitter 220 transmits print data 310 (described later with reference toFIG. 6 ) containing the encrypted print-setting information part and the encrypted drawing data part to theprint server 140. As theprint data 310 is transmitted to theprint server 140, the encryption information added to theprint data 310 is also notified to theprint server 140. Theencryption information adder 218 and theprint data transmitter 220 constitute notifying means of the terminal in the present embodiment. It should be noted that this encryption information contains information indicating the encryption system and a type of key used for the encryption. In other words, the encryption information does not contain the key information itself to be used for decryption. -
FIG. 6 is an illustration for describing an overall flow of data in theimage forming system 100 according to the present embodiment. It should be noted thatFIG. 6 illustrates an example in which encryption processing using a print server's public key is set to the print-settinginformation part 302, whereas encryption processing using a user-specific public key is set to thedrawing data part 304. The terminal 110 is able to acquire the print server's public key and the user-specific public key as necessary. - In an example illustrated in
FIG. 6 , the print-settinginformation part 302 of theprint data 300 is encrypted using the print server's public key, and the drawingdata part 304 is encrypted using a job-specific common key. This job-specific common key is a temporary encryption key of a common key system that is generated specific to a job of specific print data. The job-specific common key is further encrypted using the user-specific public key. Accordingly, the encrypted print-settinginformation part 312 can be decrypted using a print server's secret key corresponding the print server's public key. By contrast, the encrypteddrawing data part 314 can be decrypted using a user-specific secret key corresponding to the user-specific public key. - Heretofore, a description is given of an example in which the print-setting
information part 302 is encrypted with a public key encryption system using the print server's public key. Further, heretofore, a description is given of an example in which thedrawing data part 304 encrypted with a common key encryption system using the job-specific common key, which is later encrypted with a public key encryption system using the user-specific public key. It should be noted that these are just examples and any suitable encryption processing is performed on each data part. On each of the print-settinginformation part 302 and the drawingdata part 304, either encryption of the part using a public key encryption system, or encryption of the part using a common key encryption system and encryption of the common key using a public key system can be performed independently. - In response to a request for storing print data, the
print data 310 including the encrypted print-settinginformation part 312 and the encrypteddrawing data part 314 is transmitted from the terminal 110 to theprint server 140 together with the encrypted job-specificcommon key 316, as illustrated inFIG. 6 . - Hereinafter, a description is given of a functional configuration of the
print server 140 with reference toFIG. 4B . As illustrated inFIG. 4B , themodule configuration 240 of theprint server 140 includes, aprint data receiver 242, a settingchangeability determiner 244, a printdata storage unit 246, a print-settinginformation decryption unit 248, aprint setting changer 250, a print-settinginformation encryption unit 252, and aprint data transmitter 254. - The
print data receiver 242 receives theprint data 310 including the print-settinginformation part 312 and the drawingdata part 314, which are obtained by encrypting the print-settinginformation part 302 and the drawingdata part 304, respectively, by different encryption processings. Theprint data receiver 242 constitutes receiving means of the data storage apparatus in the present embodiment. - Further, the setting
changeability determiner 244 determines, based on the encryption information added to theprint data 310, whether the print-settinginformation part 312 of the receivedprint data 310 can be decrypted using the print server's secret key. In other words, the settingchangeability determiner 244 determines whether the print setting can be changed. As described above, the encryption information contains information indicating the encryption system that is applied to the print-settinginformation part 302 when obtaining the print-settinginformation part 312 and information indicating a type of the key used for encrypting the print-settinginformation part 302. Accordingly, when the encryption information indicates the encryption processing using the print server's public key, the settingchangeability determiner 244 determines that it is possible to decrypt the encrypted print-settinginformation part 312 and to change the print setting. Based on the determination result, the settingchangeability determiner 244 adds, to theprint data 310, print-setting changeability information indicating whether the print setting can be changed. The settingchangeability determiner 244 constitutes determining means of the data storage apparatus in the present embodiment. - The print
data storage unit 246 stores print data received from the terminal 110. Preferably, the printdata storage unit 246 stores theprint data 310 together with the print-setting changeability information. A storage area in which the print data is stored is implemented by theHDD 18 of theprint server 140. The printdata storage unit 246 constitutes storage means of the data storage apparatus in the present embodiment. - In response to a request for changing the print setting from an external apparatus, for example, the
print setting changer 250 changes the print setting using the print-settinginformation decryption unit 248 and the print-settinginformation encryption unit 252, when it is determined that the print setting can be changed. - The print-setting
information decryption unit 248 decrypts the print-settinginformation part 312 based on the encryption information, when it is determined that the print setting can be changed. Theprint setting changer 250 updates the decoded print-setting information part to reflect a change based on change information received with the request for changing the print setting. The print-settinginformation encryption unit 252 re-encrypts the print-setting information part that is updated to reflect the change. The print-settinginformation decryption unit 248 constitutes decrypting means in the present embodiment. Theprint setting changer 250 constitutes changing means in the present embodiment. Further, the print-settinginformation encryption unit 252 constitutes encrypting means in the present embodiment. - In response to a request for acquiring print data from the
image forming apparatus 170, theprint data transmitter 254 transmits print data requested by the received request to theimage forming apparatus 170. The print data may include the encrypted drawing data part and the re-encrypted print-setting information part. Theprint data transmitter 254 constitutes transmission means of the data storage apparatus in the present embodiment. - Referring again to
FIG. 6 , theprint server 140 receives theprint data 310 from the terminal 110 and stores the receivedprint data 310. In the described example, the encrypted print-settinginformation part 312 is decrypted using the print server's secret key corresponding to the print server's public key that is used for encrypting the print-settinginformation part 302 at the terminal 110. With this decryption processing, the print setting can be read out and changed in subsequent processing. When the change of the print setting is requested, theprint server 140 receiveschange information 324. - In response to a request for acquiring print data from the
image forming apparatus 170 on which a user has been verified, theprint server 140 updates a decrypted print-settinginformation part 322 to reflect a change based on the receivedchange information 324 as needed. Further, theprint server 140 re-encrypts a changed print-settinginformation part 332 using the user-specific public key. A re-encrypted print-settinginformation part 342 can be decrypted using the user-specific secret key corresponding to the user-specific public key. Accordingly, the entirety of theprint data 340 can be decrypted using the user-specific secret key (with the encrypted job-specific common key 316). It should be noted that theprint server 140 can acquired the user-specific public key as necessary. - The
print data 340 including the print-settinginformation part 342 that is encrypted using the user-specific public key and the encrypteddrawing data part 314 is transmitted to theimage forming apparatus 170 together with the encrypted job-specificcommon key 316. - Hereinafter, a description is given of a functional configuration of the
image forming apparatus 170 with reference toFIG. 4C . As illustrated inFIG. 4C , themodule configuration 270 of theimage forming apparatus 170 includes, aprint data receiver 272, a printdata decryption unit 274, a printdata integration unit 276, aprint processing executor 278, anauthentication information reader 280, and anauthentication inquiry unit 282. - The
image forming apparatus 170 includes an authentication information reading apparatus such as an integrated circuit (IC) card reader that reads an authentication device such as an IC card. The authentication device such as an IC card stores user's authentication information or identification information associated with the authentication information, and the user-specific secret key in a secured manner. When an authentication procedure is requested by placing the IC card over the IC card reader or inserting the IC card into the IC card reader, the authentication information stored in the IC card is read out for execution of authentication processing. When the authentication succeeds and a use authority is granted, the user-specific secret key stored in the IC card becomes available. - The IC card is just an example of the authentication device, and any suitable device that can be carried by a user and store a secret key in a secured manner may be used, such as a portable terminal like a smartphone. A secret key stored in the authentication device may be a key that is generated and managed in organizations such as public offices, educational institutes, and enterprises.
- The
authentication information reader 280 communicates with the authentication device such as an IC card to read out the authentication information stored therein. Theauthentication information reader 280 constitutes reading means of the information device in the present embodiment. In response to the authentication procedure from a user, theauthentication inquiry unit 282 transmits an authentication inquiry based on the authentication information to theauthentication server 190. When theauthentication inquiry unit 282 determines, based on the authentication result received from theauthentication server 190, that the authentication has succeeded and an appropriate use authority is granted, theauthentication inquiry unit 282 makes the user-specific secret key in the authentication device available. Theauthentication inquiry unit 282 constitutes authentication means of the information device in the present embodiment. - The
print data receiver 272 receives encrypted print data from theprint server 140. The printdata decryption unit 274 determines which encryption processing is performed on each of the print-setting information part and the drawing data part based on the encryption data, and decrypts each part of the received print data. The printdata integration unit 276 integrates the decrypted print-setting information part and the decrypted drawing data part. Theprint processing executor 278 controls theplotter 66 illustrated inFIG. 3 based on the integrated print data to execute print processing. It should be noted that theprint data receiver 272 constitutes receiving means of the information device in the present embodiment. The printdata decryption unit 274 constitutes decrypting means of the information device in the present embodiment. Further, the printdata integration unit 276 constitutes integrating means of the information device in the present embodiment. - Referring again to
FIG. 6 , in the described example, the printdata decryption unit 274 decrypts the print-settinginformation part 342 and the drawingdata part 314 using the user-specific secret key that is made available after the authentication. More specifically, the printdata decryption unit 274 decrypts the encrypted print-settinginformation part 342 and the encrypted job-specificcommon key 316 using the user-specific secret key. Further, the printdata decryption unit 274 decrypts, using the decrypted job-specific common key, the drawingdata part 314 that has been encrypted at the terminal 110 using the job-specific common key. - Hereinafter, a description is given of a functional configuration of the
authentication server 190 with reference toFIG. 4D . As illustrated inFIG. 4D , themodule configuration 290 of theauthentication server 190 includes anauthentication inquiry receiver 292, anauthentication management unit 294, and anauthentication result transmitter 296. - For user authentication, the
image forming apparatus 170 transmits the authentication information that is read out by theauthentication information reader 280 to theauthentication server 190. Theauthentication inquiry receiver 292 receives an authentication inquiry having the authentication information attached thereto. Theauthentication inquiry receiver 292 transfers the authentication information to theauthentication management unit 294 to request authentication processing. In response to the authentication inquiry, theauthentication management unit 294 checks the authentication information against user information to perform authentication processing. When the authentication succeeds, theauthentication management unit 294 grants a use authority. When the authentication fails, the authentication management unit does not grant a user authority. Theauthentication result transmitter 296 sends back a response indicating the authentication result by theauthentication management unit 294 to theimage forming apparatus 170 from which the inquiry is transmitted. - In the described embodiment, a description is given of an example in which the
image forming system 100 includes theauthentication server 190 that performs authentication processing. However, as described above, in other embodiments, theimage forming system 100 may not include theauthentication server 190. In an embodiment in which theimage forming system 100 does not include theauthentication server 190, theimage forming apparatus 170 includes an authentication management unit corresponding to theauthentication management unit 294. This authentication management unit of theimage forming apparatus 170 performs authentication processing in response to receiving the authentication inquiry and grants a use authority when the authentication succeeds. - Hereinafter, a description is given of changing a print setting on the
print server 140 according to the present embodiment with reference toFIGs. 4A to 4D . In a specific embodiment, theprint setting changer 250 of theprint server 140 receives change information from an external apparatus such as the terminal 110 and theimage forming apparatus 170. The change information indicates a change to the print-setting information part of the print data stored in the printdata storage unit 246. - As illustrated in
FIG. 4C , themodule configuration 270 of theimage forming apparatus 170 further includes anoperation acceptance unit 284, ascreen display unit 286, and adata communication unit 288. - The
data communication unit 288 communicates with theprint setting changer 250 of theprint server 140 to transmit a request for acquiring a job list, a request for acquiring print-setting information of specific print data, and a request for changing the print-setting information of print data. Further, thedata communication unit 288 acquires a job list information, the print-setting information of the print data, and a result of changing the print setting from theprint server 140. Further, thedata communication unit 288 acquires, together with the job list information for example, print-setting changeability information indicating whether the print-setting information part of the specific print data can be changed using the print server's secret key. Thedata communication unit 288 constitutes acquiring means and transmitting means of the information device in the present embodiment. - The
screen display unit 286 displays various screens such as a job list screen on a display of thecontrol panel 62 based on the acquired job list information and the print-setting information of print data. When the print-setting changeability information of the specific print data indicates that the print setting can be changed, thescreen display unit 286 displays information of the print-setting information part and a print-setting change screen to accept an instruction for a change to the print-setting information part. Theoperation acceptance unit 284 accepts a user instruction via various screens. Theoperation acceptance unit 284 is implemented by, for example, an input device of thecontrol panel 62. Theoperation acceptance unit 284 accepts an instruction for specifying a change to the setting information part, when the print-setting changeability information indicates that the print setting can be changed. Theoperation acceptance unit 284 and thescreen display unit 286 constitute, respectively, operation means and display means of the information device in the present embodiment. -
FIG. 7 is an example of a print-settingchange screen 400 displayed on a display of thecontrol panel 62 of theimage forming apparatus 170 in theimage forming system 100 according to the present embodiment. It should be noted that the print-settingchange screen 400 ofFIG. 7 is displayed before an actual print processing is performed in theimage forming apparatus 170. - As illustrated in
FIG. 7 , the print-settingchange screen 400 includes ajob name display 402, a number-of-copies key 404, areset key 406,radio buttons radio buttons print key 412, and a cancel key 414. Thejob name display 402 indicates a job name. The number-of-copies key 404 accepts an instruction for changing a number of copies. Theradio buttons radio buttons print key 412 accepts an instruction for execution of printing. The cancel key 414 accepts instruction for cancel of printing. The print-settingchange screen 400 includes these setting change items to be selected or specified by a user to implement a change to the stored print settings. - The
operation acceptance unit 284 accepts an instruction for changing the setting information part via the print-settingchange screen 400. In response to an input of the change information via the print-settingchange screen 400, thedata communication unit 288 transmits, to theprint server 140, the change information based on the instruction for changing the print-setting information part. Thus, theprint setting changer 250 of theprint server 140 receives the change information indicating a change to the print-setting information part input via the print-settingchange screen 400. - The
print setting changer 250 can further provide an external apparatus such as the terminal 110 that includes a general-purpose browser with a screen that enables a user to input change information indicating a change to the print-setting information part of the print data stored in the printdata storage unit 246. In this case, theprint setting changer 250 has a web server function to provide the print-setting change screen as a web user interface (Web UI). - Hereinafter, a description is given of steps and a flow of data in a secured print processing performed by each apparatus or device according to the present embodiment with reference to
FIGs. 8 to 14 . -
FIG. 8 is a flowchart illustrating steps in an operation of storing print data from the terminal 110 to theprint server 140 in theimage forming system 100 according to the present embodiment. First, at S101, the terminal 110 receives a user instruction for printing and generates print data by a printer driver. - At S102, the terminal 110 refers to a setting to select an encryption system to be applied to each part of the print data. At S103, the terminal 110 separates the print data into the print-setting information part and the drawing data part.
- At S104, the terminal 110 encrypts the print-setting information of the print data using the encryption system that is selected in advance. At S105, the terminal 110 encrypts the drawing data part of the print data using the encryption system that is selected in advance. At S106, the terminal 110 adds the encryption information to the encrypted print data. At S107, the terminal 110 transmits, to the
print server 140, the encrypted print data to which the encryption data is added. With these processing steps, theprint server 140 is notified of the encryption information indicating the encryption processing applied to the setting information part. - At S108, the
print server 140 receives the print data from the terminal 110. At S109, theprint server 140 determines whether the print setting can be changed based on the encryption information. Further, at S109, theprint server 140 adds the print-setting changeability information to the print data. At S110, theprint server 140 stores the print data received from the terminal 110. At Sill, theprint server 140 transmits the storage result to the terminal 110. In response to receiving the storage result from theprint server 140, the terminal 110 displays the storage result on a display, for example, to finish this operation of storing the print data at S112. Then, the operation ends. -
FIG. 9 is an example illustration for describing a flow of data in an operation of separating and encrypting the print data performed by the terminal 110 according to the present embodiment. As illustrated inFIG. 9 , theprint data 300 received from the printer driver is separated into the print-settinginformation part 302 and the drawingdata part 304 by the print data separation processing (S103). - The print-setting
information part 302 is encrypted based on the encryption system setting by the encryption processing (S104) using the print server's public key. The drawingdata part 304 is encrypted based on the encryption system setting by the encryption processing (S105-1) using the job-specific common key. The job-specific common key is further encrypted by the encryption processing (S105-2) using the user-specific public key. The encrypted print-settinginformation part 312, drawingdata part 314, and job-specificcommon key 316 is transmitted to theprint server 140 together with the encryption information generated based on the setting of encryption system. -
FIG. 10 is an example illustration for describing a flow of data in an operation of storing the print data performed by theprint server 140 according to the present embodiment. Theprint server 140 receives theencrypted print data 310 at the data reception processing (S108). Theprint server 140 extracts theencryption information 318 from theprint data 310, and determines, based on a type of the key used for the encryption, whether or not theprint server 140 is able to decrypt the encrypted print-settinginformation part 312 at the determination processing (S109). - When a public key encryption system is applied to the encryption of the print-setting
information part 302 using the print server's public key and therefore the encrypted print-settinginformation part 312 can be decrypted by theprint server 140, the print-settingchangeability information 320 is set indicating that the print-setting can be changed. By contrast, when theprint server 140 determines that it cannot decrypt the encrypted print-settinginformation part 312, the print-settingchangeability information 320 is set indicating that the print setting cannot be changed. The print-settingchangeability information 320 is stored in theprint server 140 at the storage processing (S110) together with the encrypted print-settinginformation part 312, the encrypteddrawing data part 314, and the encrypted job-specificcommon key 316 included in theprint data 310. -
FIGs. 11A and11B are a flowchart illustrating steps in an operation of acquiring the print data from theprint server 140 to theimage forming apparatus 170 to perform printing processing in theimage forming system 100 according to the present embodiment. First, at S201, theimage forming apparatus 170 performs user authentication processing. A detailed description is given later of the user authentication processing. - At S202, based on the authentication result, the
image forming apparatus 170 transmits a request for acquiring a job list of the authorized user. At S203, theprint server 140 receives the request for acquiring a job list from theimage forming apparatus 170. At S204, theprint server 140 acquires the job list of the user from the printdata storage unit 246. At S205, theprint server 140 transmits the job list to theimage forming apparatus 170. For example, theprint server 140 transmits, to theimage forming apparatus 170, the print-setting changeability information of each piece of print data together with the job list. - In response to receiving the job list (S206), the
screen display unit 286 of theimage forming apparatus 170 displays a job list screen on a display. At S207, theoperation acceptance unit 284 accepts a user selection of print data via the job list screen on the display. At S208, theimage forming apparatus 170 reads out the print-setting changeability information of the selected print data and determines whether the print setting can be changed. When theimage forming apparatus 170 determines that the print setting can be changed (S208: YES), the operation proceeds to S209. At S209, theimage forming apparatus 170 displays the print-setting change screen as illustrated inFIG. 7 . - At S210, the
image forming apparatus 170 determines whether the user gives an instruction for changing the print setting via the print-setting change screen. When theimage forming apparatus 170 determines that the instruction for changing the print setting is given (S210: YES), the operation proceeds to S209. At S211, theimage forming apparatus 170 ads setting change information that is input via the print-setting change screen to a request for acquiring print data. This request for acquiring print data may be referred to as a "print-data acquisition request" hereinafter. At S212, theimage forming apparatus 170 transmits, to theprint server 140, the print-data acquisition request to which the setting change information is added. By contrast, when theimage forming apparatus 170 determines that the print setting cannot be changed (S208: NO), or when theimage forming apparatus 170 determines that the instruction for changing the print setting is not given (S210: NO), the operation proceeds to S212. - At S213, the
print server 140 receives the print-data acquisition request from theimage forming apparatus 170. At S214, theprint server 140 acquires print data corresponding to the request from the printdata storage unit 246. At S215, theprint server 140 determines whether the print-data acquisition request includes the setting change information. When theprint server 140 determines that the print-data acquisition request includes the setting change information (S215: YES), the operation proceeds to S216. It should be noted that the fact that the setting change information is included in the print-data acquisition request means that the user has given an instruction for changing the print setting as well as that the print setting of the print data can be changed. - At S216, the
print server 140 decrypts the print-setting information part in the print data. At S217, theprint server 140 updates the print setting based on the setting change information. At S218, theprint server 140 re-encrypts the print-setting information part. By contrast, when theprint server 140 determines that the print-data acquisition request does not include change information (S215: NO), the operation proceeds to S219. At S219, theprint server 140 transmits the print data to theimage forming apparatus 170. - At S220, the
image forming apparatus 170 receives the print data from theprint server 140. At S221, theimage forming apparatus 170 decrypts the print-setting information part. At S222, theimage forming apparatus 170 decrypts the drawing data part. Further, at S223, theimage forming apparatus 170 integrates the decrypted print-setting information part and the decrypted drawing data part. At S224, theimage forming apparatus 170 performs print processing based on the integrated print data and finishes the print processing. At S225, theimage forming apparatus 170 transmits the print result to theprint server 140. In response to receiving the print result (S226), theprint server 140 records the completion of a print job or deletes the print data of the completed print job as needed. Then, the operation ends. -
FIG. 12 is an example illustration for describing a flow of data in an operation of transmitting print data in response to a request for acquiring print data performed by theprint server 140 according to the present embodiment. It should be noted that the data flow illustrated inFIG. 12 corresponds to a case in which the print-data acquisition request including the setting change information is transmitted from theimage forming apparatus 170. - The
print server 140 receives a print-data acquisition request 350 at the reception processing (S213). Theprint server 140 acquires theprint data 310 from the printdata storage unit 246 based onacquisition request information 352 included in the print-data acquisition request 350 at the data acquisition processing (S214). When theprint server 140 determines that the print setting can be changed at the determination processing (S215), the print-settinginformation part 312 is decrypted at the decryption processing (S216) using the print server's secret key. Thus, the decrypted print-settinginformation part 322 is obtained. It should be noted the determination processing (S215) may be performed based on the print-settingchangeability information 320 included in theprint data 310. Alternatively, the determination processing (S215) may be performed based on whether or not the print-data acquisition request 350 includes settingchange information 354. - The decrypted print-setting
information part 322 is updated based on the settingchange information 354 included in the print-data acquisition request 350 at the setting change processing (S217). The updated print-settinginformation part 332 is re-encrypted by the encryption processing (S218) using the user-specific public key. At the transmission processing (S219), the re-encrypted updated print-settinginformation part 342 is transmitted to theimage forming apparatus 170 together with theencryption information 318, the encrypted job-specificcommon key 316, and the encrypteddrawing data part 314. -
FIG. 13 is a flowchart illustrating steps in authentication processing performed by theimage forming apparatus 170 and theauthentication server 190 in cooperation with each other in theimage forming system 100 according to the present embodiment. First, at S301, theauthentication information reader 280 of theimage forming apparatus 170 acquires authentication information from the authentication device. At S302, theimage forming apparatus 170 transmits an authentication inquiry together with the acquired authentication information to theauthentication server 190. - At S303, the
authentication server 190 receives the authentication inquiry from theimage forming apparatus 170. At S304, theauthentication server 190 searches a directory database for the authentication information. At S305, theauthentication server 190 acquires the search result. At S306, theauthentication server 190 determines whether the user information matches the authentication information based on the search result. When theauthentication server 190 determines that the authentication information transmitted together with the authentication inquiry is present in the directory database and the user information matches the authentication information (S306: YES), the operation proceeds to S307. At S307, theauthentication server 190 sets a use authority for using applications, etc., to the user. At S308, theauthentication server 190 transmits the authentication result to theimage forming apparatus 170. - At S309, the
image forming apparatus 170 receives the authentication result from theauthentication server 190. At S310, theimage forming apparatus 170 determines whether the use authority is present. When theimage forming apparatus 170 determines that the use authority is present (S310: YES), at S311, theimage forming apparatus 170 enables the user to log in theimage forming apparatus 170 to allow the user to use applications or functions that are set by the use authority. Then, the operation ends. With this processing, the user-specific secret key in the authentication device is made available. By contrast, when theimage forming apparatus 170 determines that the use authority is not preset (S310: NO), the operation proceeds to S312. At S312, theimage forming apparatus 170 denies the login by the user. Then, the operation ends. In this case, a notification indicating a login failure is displayed on a display of thecontrol panel 62 of theimage forming apparatus 170, and the user is not allowed to use the applications or functions. - A description is given, with reference to
FIG. 13 , of a case in which theauthentication server 190 is used in the authentication processing. Alternatively, in a case in which theauthentication server 190 is not used, the authentication information acquired from the authentication device at S301 is transmitted to the authentication management unit of theimage forming apparatus 170. This authentication management unit of theimage forming apparatus 170 searches for the corresponding authentication information. When the authentication information is present, a use authority for using applications is set to the user in theimage forming apparatus 170. With this processing, the user-specific secret key is also made available. When the authentication information is not present, a notification indicating a login failure is displayed on a display of thecontrol panel 62 of theimage forming apparatus 170. - In an operation illustrated in the flowchart of
FIGs. 11A and11B , the change of the print setting is performed when theimage forming apparatus 170 acquires print data from theprint server 140. Hereinafter, a description is given of steps in an operation of changing the print stetting of print data stored in theprint server 140 from the terminal 110, with reference toFIG. 14 . First, at S401, the terminal 110 transmits, to theprint server 140, a request for acquiring a job list of the user using a browser. At S402, theprint server 140 receives the request for acquiring a job list from the terminal 110. At S403, theprint server 140 acquires the job list of the user. At S404, theprint server 140 transmits screen data containing the job list to the terminal 110. - In response to receiving the screen data containing the job list from the print server 140 (S405), the terminal 110 displays a job list screen on the browser. At S406, the terminal 110 accepts a user selection of a print job via the input device. At S407, the terminal 110 reads out, from the job list information, the print-setting changeability information of the selected print job to determine whether the print setting can be changed. When the terminal 110 determines that the print setting can be changed (S407: YES), the operation proceeds to S408. At S408, terminal 110 transmits a request for the print-setting change screen to the
print server 140, receives the print-setting change screen from theprint server 140, and displays the print-setting change screen on the browser. The print-setting change screen enables the user to input the setting change information. At S409, the terminal 110 transmits a request for changing the print setting to theprint server 140. The request for changing the print setting includes the setting change information added thereto. - At S410, the
print server 140 receives the request for changing the print setting from the terminal 110. At S411, theprint server 140 acquires the print data corresponding to the request for change. At S412, theprint server 140 decrypts the print-setting information part of the print data. At S413, theprint server 140 updates the print-setting information part to reflect the setting change information. At S414, theprint server 140 re-encrypts the print-setting information part and stores the re-encrypted part. At S415, theprint server 140 transmits the result of changing the print setting toterminal 110. At S416, the terminal 110 receives the result of changing the print setting from theprint server 140. At S417, the terminal 110 displays the change result on a browser to finish the operation of changing the print setting. Then, the operation ends. When the terminal 110 determines that the print setting cannot be changed (S407: NO), the operation directly proceeds to S417. - As described heretofore, according to the above-described embodiment, an information processing system, a job processing method, a data storage apparatus, and an information device are provided, in which a substantive data part of job data is kept confidential on a communication path and at the data storage apparatus, while a setting information part of the job data can be changed at the data storage apparatus.
- The job data, which has been encrypted, is transferred via the communication path. At the data storage apparatus, the substantive data part, which may contain confidential information, has been encrypted. By contrast, when the setting information part can be decrypted at the data storage apparatus, the setting information part is decrypted to accept the change of setting.
- The functional blocks as described above are implemented by a computer-executable program written by programming languages such as an assembler language, C, and object-oriented programming languages such as C++, C#, and Java (registered trademark). The program may be distributed via a telecommunication line as being stored in a computer-readable storage medium such as a ROM, an electrically erasable and programmable read only memory (EEPROM), an electrically programmable read only memory (EPROM), a flash memory, a flexible disk, a compact disc read only memory (CD-ROM), a compact disc rewritable (CD-RW), a digital versatile disk (DVD)-ROM, a DVD-RAM, a DVD-RW, a Blu-ray disc, a secure digital (SD) card, and a magneto-optical disc (MO).
- Numerous additional modifications and variations are possible in light of the above teachings. It is therefore to be understood that within the scope of the appended claims, the disclosure of the present invention may be practiced otherwise than as specifically described herein. For example, elements and/or features of different illustrative embodiments may be combined with each other and/or substituted for each other within the scope of the appended claims.
- The present invention can be implemented in any convenient form, for example using dedicated hardware, or a mixture of dedicated hardware and software. The present invention may be implemented as computer software implemented by one or more networked processing apparatuses. The processing apparatuses can compromise any suitably programmed apparatuses such as a general purpose computer, personal digital assistant, mobile telephone (such as a WAP or 3G-compliant phone) and so on. Since the present invention can be implemented as software, each and every aspect of the present invention thus encompasses computer software implementable on a programmable device. The computer software can be provided to the programmable device using any conventional carrier medium (carrier means). The carrier medium can compromise a transient carrier medium such as an electrical, optical, microwave, acoustic or radio frequency signal carrying the computer code. An example of such a transient medium is a TCP/IP signal carrying computer code over an IP network, such as the Internet. The carrier medium can also comprise a storage medium for storing processor readable code such as a floppy disk, hard disk, CD ROM, magnetic tape device or solid state memory device.
Claims (9)
- An information processing system (100) comprising a terminal apparatus (110), a data storage apparatus (140), and an information device (170), whereinthe terminal apparatus (110) includes:selecting means (214) for selecting different encryption processings to be respectively performed on a setting information part of job data and a substantive data part of the job data; andnotifying means (218, 220) for notifying information indicating the encryption processing performed on the setting information part of the job data,the data storage apparatus (140) includes:storage means (246) for storing the job data received from the terminal apparatus (110); anddetermining means (244) for determining, based on the notified information indicating the encryption processing, whether or not a setting indicated by the setting information part of the received job data can be changed by the data storage apparatus (140), andthe information device (170) includes:receiving means (272) for receiving the job data from the data storage apparatus (140);decrypting means (274) for decrypting the received job data; andintegrating means (276) for integrating the setting information part and the substantive data part of the received job data; characterized in thatthe determining means (244) determines whether the setting indicated by the setting information part of the received job data can be changed based on first key information stored in the data storage apparatus (140),in the encryption processing performed on the substantive data part of the job data, the substantive data part is encrypted such that the encrypted substantive part is later decrypted based on second key information that is specific to a user,the data storage apparatus (140) further comprises:accepting means (250) for accepting change information to be applied to the setting information part;decrypting means (248) for decrypting the setting information part in response to a determination by the determination means (244) that the setting indicated by the setting information part can be changed;changing means (250) for updating the decrypted setting information part to incorporate the change information based on the accepted change information; andencrypting means (252) for re-encrypting the setting information part that has been updated to incorporate the change information such that the re-encrypted setting information part is later decrypted based on the second key information, andthe decrypting means (274) of the information device (170) decrypts each of the setting information part and the substantive data part of the received job data based on the second key information.
- The information processing system (100) of claim 1, wherein the information device (170) further comprises:display means (286) for displaying information indicated by the setting information part of the job data stored in the data storage apparatus (140);operation means (284) for accepting an instruction for changing the setting information part; andtransmitting means (288) for transmitting, to the data storage apparatus (140), the change information based on the instruction for changing the setting information part.
- The information processing system (100) of claim 1 or 2, whereinthe data storage apparatus (140) further comprises screen providing means (250) for providing a screen that accepts an input of the change information to be applied to the setting information part of the job data stored in the storage means (246), andthe accepting means (250) accepts the change information input via the screen.
- The information processing system (100) of any one of claims 1 to 3, whereinthe first key information is a first secret key that is specific to the data storage apparatus (140) and corresponds to a first public key used when encrypting the setting information part at the terminal apparatus (110),the second key information is a second secret key that is specific to a user and corresponds to a second public key used when encrypting the substantive data part at the terminal apparatus (110), andthe encryption processings performed respectively on the setting information part and the substantive data part are independently selected from 1) an encryption of the setting information part or the substantive data part with a public-key encryption system and 2) a combination of an encryption of the setting information part or the substantive data part with a common key encryption system and a subsequent encryption of a common key with a public key encryption system.
- The information processing system (100) of any one of claims 1 to 4, wherein the information device (170) further comprises reading means (280) for reading out the second key information stored in an authentication device that is communicable with the information device (170).
- The information processing system (100) of any one of claims 1 to 5, whereinthe information device (170) further comprises authentication means (282) for accepting an authentication procedure from a user and making the second key information available when authentication is successful, andthe authentication means (282) performs authentication processing in response to accepting the authentication procedure, and grants a use authority when the authentication is successful.
- The information processing system (100) of claim 6, further comprising an authentication server (190) that performs authentication processing in response to an inquiry for authentication from the information device (170), grants a use authority when the authentication processing is successful, and gives an authentication result back to the information device (170),
wherein the authentication means (282) makes the inquiry for authentication to the authentication server (190) to receive the authentication result. - A job processing method performed by an information processing system (100) comprising a terminal apparatus (110), a data storage apparatus (140), and an information device (170), the method comprising;selecting (S101), at the terminal apparatus (110), different encryption processings to be respectively performed on a setting information part of job data and a substantive data part of the job data, the substantive data part is encrypted such that the encrypted substantive part is later decrypted based on second key information that is specific to a user;notifying (S106, S107), from the terminal apparatus (110) to the data storage apparatus (140), the information indicating the encryption processing performed on the setting information part of the job data,storing (S110), at the data storage apparatus (140), the job data received from the terminal apparatus;determining (S109, S208), at the data storage apparatus (140), based on first key information stored in the data storage apparatus (140), whether or not a setting indicated by the setting information part of the received job data can be changed by the data storage apparatus;accepting, by the data storage apparatus (140), change information to be applied to the setting information part;decrypting (S216) , by the data storage apparatus (140), the setting information part in response to a determination that the setting indicated by the setting information part can be changed;updating (S217), by the data storage apparatus (170), the decrypted setting information part to incorporate the change information based on the accepted change information;re-encrypting (S218), by the data storage apparatus (170), the setting information part that has been updated to incorporate the change information such that the re-encrypted setting information part is later decrypted based on the second key information;receiving (S220), at the information device (170), the job data from the data storage apparatus;decrypting (S221, S222), at the information device (170), each of the setting information part and the substantive data part of the received job data based on the second key information; andintegrating (S223), at the information device (170), a setting information part and a substantive data part of the received job data.
- A carrier means carrying computer readable code that, when executed by a computer, causes the computer to control an information processing system (100) to perform the method of claim 8.
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2016044291A JP6555157B2 (en) | 2016-03-08 | 2016-03-08 | Information processing system, job processing method, data storage device, and information device |
Publications (2)
Publication Number | Publication Date |
---|---|
EP3217276A1 EP3217276A1 (en) | 2017-09-13 |
EP3217276B1 true EP3217276B1 (en) | 2022-08-31 |
Family
ID=58265797
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP17159388.2A Active EP3217276B1 (en) | 2016-03-08 | 2017-03-06 | Information processing system, job processing method, data storage apparatus, information device, and carrier means |
Country Status (2)
Country | Link |
---|---|
EP (1) | EP3217276B1 (en) |
JP (1) | JP6555157B2 (en) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP7077687B2 (en) | 2018-03-15 | 2022-05-31 | 株式会社リコー | Image forming device, image forming method, and image forming program |
RU2697922C1 (en) * | 2018-05-04 | 2019-08-21 | Общество с ограниченной ответственностью "РЕГУЛ+" (ООО "РЕГУЛ+") | Method of information support of information-control system based on invariant information structures |
Family Cites Families (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPS607A (en) | 1983-06-14 | 1985-01-05 | 住友電気工業株式会社 | Oil-immersed insulating cable |
JP4018645B2 (en) | 2004-01-30 | 2007-12-05 | キヤノン株式会社 | Printing apparatus, data processing method, storage medium, program |
JP4135733B2 (en) * | 2005-06-30 | 2008-08-20 | コニカミノルタビジネステクノロジーズ株式会社 | Job ticket issuing device and job execution device |
US20080092239A1 (en) * | 2006-10-11 | 2008-04-17 | David H. Sitrick | Method and system for secure distribution of selected content to be protected |
JP4687744B2 (en) * | 2008-05-13 | 2011-05-25 | コニカミノルタビジネステクノロジーズ株式会社 | Image forming apparatus and image forming system |
-
2016
- 2016-03-08 JP JP2016044291A patent/JP6555157B2/en not_active Expired - Fee Related
-
2017
- 2017-03-06 EP EP17159388.2A patent/EP3217276B1/en active Active
Also Published As
Publication number | Publication date |
---|---|
EP3217276A1 (en) | 2017-09-13 |
JP6555157B2 (en) | 2019-08-07 |
JP2017162072A (en) | 2017-09-14 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8456653B2 (en) | Data processing apparatus for producing print job data whose authority is managed by external server, and image processing apparatus for printing a print job whose authority is managed by external server | |
CN102195961B (en) | Image forming system and image forming method | |
JP4687744B2 (en) | Image forming apparatus and image forming system | |
US7484104B2 (en) | Information processor and information processing method for cooperative operation of job processor | |
JP4780179B2 (en) | Information processing apparatus and information processing program | |
JP4509091B2 (en) | Image processing system and print job output method | |
US10178134B2 (en) | Management apparatus and method for controlling management apparatus | |
JP6717076B2 (en) | Printing system, encryption key changing method, printer, program | |
EP1978442B1 (en) | Program-generating device and method, program for implementing the program-generating method, and storage medium | |
JP2005339551A (en) | System and method for authenticating image formation job | |
US20120307286A1 (en) | Administration server and image processing system | |
JP2009171050A (en) | Multifunctional machine and synchronization system | |
JP2005284985A (en) | Network compatible device, maintenance method for maintaining network compatible device, program, medium storing program thereon, and maintenance system thereof | |
JP2008165368A (en) | Service restriction method, image processing restriction method, and image processing system | |
JP2007334881A (en) | Method and system for monitoring unprocessed operation for image processing | |
EP3042332B1 (en) | Image processing apparatus authentication system and image processing apparatus | |
JP2007041966A (en) | Program and apparatus for device management | |
EP3217276B1 (en) | Information processing system, job processing method, data storage apparatus, information device, and carrier means | |
JP5261130B2 (en) | Image forming apparatus and image output system | |
EP1942439A2 (en) | Document management system, method, and program, and image forming apparatus | |
US10152583B2 (en) | Security information update system, information processing apparatus, and non-transitory computer-readable recording medium encoded with security information update program | |
EP3985497A1 (en) | Information processing system, output system, output method, and recording medium | |
JP2005267201A (en) | Image processor and system, method of limiting use, and program | |
US8319983B2 (en) | Image forming device, image forming device terminal, image forming system, and program for confidential documents | |
JP7000735B2 (en) | Image forming device, information processing method, information processing program and information processing system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PUAI | Public reference made under article 153(3) epc to a published international application that has entered the european phase |
Free format text: ORIGINAL CODE: 0009012 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: REQUEST FOR EXAMINATION WAS MADE |
|
17P | Request for examination filed |
Effective date: 20170306 |
|
AK | Designated contracting states |
Kind code of ref document: A1 Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR |
|
AX | Request for extension of the european patent |
Extension state: BA ME |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: EXAMINATION IS IN PROGRESS |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: EXAMINATION IS IN PROGRESS |
|
17Q | First examination report despatched |
Effective date: 20201223 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: EXAMINATION IS IN PROGRESS |
|
GRAP | Despatch of communication of intention to grant a patent |
Free format text: ORIGINAL CODE: EPIDOSNIGR1 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: GRANT OF PATENT IS INTENDED |
|
INTG | Intention to grant announced |
Effective date: 20220408 |
|
GRAS | Grant fee paid |
Free format text: ORIGINAL CODE: EPIDOSNIGR3 |
|
GRAA | (expected) grant |
Free format text: ORIGINAL CODE: 0009210 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: THE PATENT HAS BEEN GRANTED |
|
AK | Designated contracting states |
Kind code of ref document: B1 Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR |
|
REG | Reference to a national code |
Ref country code: CH Ref legal event code: EP Ref country code: GB Ref legal event code: FG4D |
|
REG | Reference to a national code |
Ref country code: AT Ref legal event code: REF Ref document number: 1515780 Country of ref document: AT Kind code of ref document: T Effective date: 20220915 Ref country code: DE Ref legal event code: R096 Ref document number: 602017061166 Country of ref document: DE |
|
REG | Reference to a national code |
Ref country code: IE Ref legal event code: FG4D |
|
REG | Reference to a national code |
Ref country code: NL Ref legal event code: FP |
|
REG | Reference to a national code |
Ref country code: LT Ref legal event code: MG9D |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: SE Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: RS Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: NO Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20221130 Ref country code: LV Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: LT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: FI Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: ES Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 |
|
REG | Reference to a national code |
Ref country code: AT Ref legal event code: MK05 Ref document number: 1515780 Country of ref document: AT Kind code of ref document: T Effective date: 20220831 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: PL Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: IS Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20221231 Ref country code: HR Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: GR Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20221201 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: SM Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: RO Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: PT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20230102 Ref country code: DK Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: CZ Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: AT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: SK Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 Ref country code: EE Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 |
|
REG | Reference to a national code |
Ref country code: DE Ref legal event code: R097 Ref document number: 602017061166 Country of ref document: DE |
|
P01 | Opt-out of the competence of the unified patent court (upc) registered |
Effective date: 20230522 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: AL Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 |
|
PLBE | No opposition filed within time limit |
Free format text: ORIGINAL CODE: 0009261 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: NO OPPOSITION FILED WITHIN TIME LIMIT |
|
26N | No opposition filed |
Effective date: 20230601 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: SI Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: MC Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 |
|
REG | Reference to a national code |
Ref country code: CH Ref legal event code: PL |
|
REG | Reference to a national code |
Ref country code: BE Ref legal event code: MM Effective date: 20230331 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: LU Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20230306 |
|
REG | Reference to a national code |
Ref country code: IE Ref legal event code: MM4A |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: LI Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20230331 Ref country code: IE Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20230306 Ref country code: CH Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20230331 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: BE Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20230331 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: NL Payment date: 20240320 Year of fee payment: 8 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: DE Payment date: 20240320 Year of fee payment: 8 Ref country code: GB Payment date: 20240320 Year of fee payment: 8 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: IT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20220831 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: FR Payment date: 20240328 Year of fee payment: 8 |